CVE-2025-59416

Vulnerability Description

The Scratch Channel is a news website. If the user makes a fork, they can change the admins and make an article. Since the API uses a POST request, it will make an article. This issue is fixed in v1.2.

Related Weaknesses (CWE)

CWE-862

References

https://github.com/The-Scratch-Channel/tsc-web-client/security/advisories/GHSA-7

FAQ

What is CVE-2025-59416?

CVE-2025-59416 is a documented vulnerability. The Scratch Channel is a news website. If the user makes a fork, they can change the admins and make an article. Since the API uses a POST request, it will make an article. This issue is fixed in v1.2...

How severe is CVE-2025-59416?

CVSS scoring is not yet available for CVE-2025-59416. Check NVD for updates.

Is there a patch for CVE-2025-59416?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.